On Thu, Jul 07, 2011 at 09:01:00AM +0200, Johannes Hofmann wrote: On Wed, Jul 06, 2011 at 10:04:48PM -0800, Roger wrote:
On Wed, Jul 06, 2011 at 11:55:13PM -0400, Benjamin Johnson wrote: On Wed, 06 Jul 2011 23:29:59 -0400, corvid <corvid@lavabit.com> wrote:
Benjamin: I'm curious about the addition of CyaSSL support. I don't know anything about it -- is it useful to you mostly for Windows reasons, or would it be useful for everyone in the general case?
Useful to everyone, I think. CyaSSL is a cross-platform, embedded SSL library; here's its homepage: http://www.yassl.com/yaSSL/Home.html
I started using it with the Windows version because it has an OpenSSL-compatible API, and a much smaller footprint -- 1.3 MB with CyaSSL versus 1.7 MB with OpenSSL. (I like that in 2011, Dillo can still fit on a floppy disk!) It's not quite as big a deal on Unix, since most distributions ship with OpenSSL, but I think it fits nicely with Dillo's goal of high software efficiency.
The CyaSSL patch actually doesn't change any source code, just some linker flags. On Unix it usually creates its own directory structure, like /usr/local/cyassl, with OpenSSL-compatible symlinks, so even that much isn't necessary.
On my Gentoo box:
$ locate cyassl
Returns a null search here. It sounds binary only or closed source?
polarssl might also be worth looking at.
Yup, polarssl is included within Gentoo Portage. ( ...and likely the other Linux distros.) -- Roger http://rogerx.freeshell.org/